A forum for reverse engineering, OS internals and malware analysis 

PWS/Qqpass

Forum for analysis and discussion about malware.

PWS/Qqpass

 #31225  by Fedor22
 Sun Jan 28, 2018 3:15 pm
WinAPI Calculator (Trojan.PWS.Qqpass.12193 or epfeqo)
A russian made fake calculator app that runs looking like a MS calculator but has some extra text making it very suspicious. This virus steals data and put files everywhere (registry, C:/, etc).

Re: Malware collection

 #31227  by Fedor22
 Mon Jan 29, 2018 12:51 pm
Fedor22 wrote:WinAPI Calculator (Trojan.PWS.Qqpass.12193 or epfeqo)
A russian made fake calculator app that runs looking like a MS calculator but has some extra text making it very suspicious. This virus steals data and put files everywhere (registry, C:/, etc).
VT: https://www.virustotal.com/en/file/1b71 ... /analysis/
Attachments
(11.43 KiB) Downloaded 27 times
 Return to “Malware”